Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Oracle linux
Oracle linuxadded 2025/06/11 12:0 a.m.6 views

Unbreakable Enterprise kernel security update

5.4.17-2136.344.4.1 - certs: Reference revocation list for all keyrings Eric Snowberg Orabug: 38052126 5.4.17-2136.344.4 - certs: Add new Oracle Linux Driver Signing key 1 certificate Sherry Yang Orabug: 37967555 5.4.17-2136.344.3 - net/mlx5e: Don't call cleanup on profile rollback failure Cosmin...

7.8CVSS9.2AI score0.0013EPSS
Exploits0
OSV
OSVadded 2024/11/06 4:26 p.m.2 views

CLSA-2024-1730910356 Update of nss

update to CKBI 2.69 from NSS 3.103 - updated certificates: - Certificate "OISTE WISeKey Global Root GC CA" - Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068" - removed certificates: - Certificate "Security Communication Root CA" - Certificate "Camerfirma Chambers of...

5.8AI score
Exploits0References1
SUSE CVE
SUSE CVEadded 2023/02/15 4:47 a.m.2 views

SUSE CVE-2017-7468

In curl and libcurl 7.52.0 to and including 7.53.1, libcurl would attempt to resume a TLS session even if the client certificate had changed. That is unacceptable since a server by specification is allowed to skip the client certificate check on resume, and may instead use the old identity which...

7.5CVSS6.9AI score0.00347EPSS
Exploits0References6
OSV
OSVadded 2022/12/12 1:15 p.m.1 views

CVE-2022-22488

IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337...

4.9CVSS5.8AI score0.00174EPSS
Exploits0References2
OSV
OSVadded 2021/12/06 3:22 p.m.4 views

CLSA-2021-1638804170 Fixed CVE-2021-43527 in nss

CVE-2021-43527: Fix memory corruption in decodeECorDsaSignature with DSA signatures and RSA-PSS - Update to CKBI 2.50 from NSS 3.67 - Removing: - Certificate "Verisign Class 3 Public Primary Certification Authority - G3" - Certificate "AddTrust Low-Value Services Root" - Certificate "AddTrust...

9.8CVSS7AI score0.05243EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2016/12/15 10:11 p.m.2 views

curl: TLS session resumption client cert bypass

It was found that the libcurl library did not prevent TLS session resumption when the client certificate had changed. An attacker could potentially use this flaw to hijack the authentication of the connection by leveraging a previously created connection with a different client certificate...

7.5CVSS7.2AI score0.01912EPSS
Exploits0References5
curl security advisories
curl security advisoriesadded 2016/08/03 8:0 a.m.3 views

TLS session resumption client cert bypass

libcurl would attempt to resume a TLS session even if the client certificate had changed. That is unacceptable since a server by specification is allowed to skip the client certificate check on resume, and may instead use the old identity which was established by the previous certificate or no...

7.5CVSS6.4AI score0.01912EPSS
Exploits0Affected Software2
Rows per page
Query Builder